Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Endpoint Standard: 9th February 2021: Microsoft Office temp files being identified as Potential Malware.

Endpoint Standard: 9th February 2021: Microsoft Office temp files being identified as Potential Malware.

Environment

  • Carbon Black Cloud Console : All Versions
  • Endpoint Standard Sensor: 3.6.0.1897 and above
  • Microsoft Windows: All Supported Versions
  • Microsoft Office

Symptoms

  • On the 9th of February 2021, Microsoft Office temporary files started being blocked.
  • These files were alerted in the console as 'Potential Malware'. 
  • This issue is affecting a small subset of customers.

Cause

This issue is related to an AMSI rules rollout that took place on 9th February 2021.

Resolution


Was this article helpful? Yes No
100% helpful (3/3)
Article Information
Author:
Creation Date:
‎02-11-2021
Views:
679
Contributors